No, it doesn't need to be public, but it still needs to be listed as a value under the app configuration (also note values are case-sensitive). In fact, you can even use values such as http://localhost/blabla therein, and as long as the request includes a value matching what's configured on the app side, it will work. For a production app however, you should be using the HTTPS scheme instead.
Microsoft OAuth2 - Redirect URI (reply URL) problem
Hi all,
I'm trying to config Microsoft Authorization for my osTicket v1.17 service, I get this error at my last step configuration
The problem is our helpdesk.mydomain.com is an internal service, I didn't public url helpdesk.mydomain.com
Does it require that osTicket service need to be public as "Callback Endpoint" "http://helpdesk.mydomain.com/api/auth/oauth2" can be accessed from internet so Microsoft can verify at last step ?
The url service need to be public for permanently ?
Or just temporary (at last validation step) and then I can make it "internal service" again ?
3 additional answers
Sort by: Most helpful
-
Jack Chuong 331 Reputation points
2022-10-17T08:02:03.717+00:00 I enable https for my helpdesk service, change url to "https://helpdesk.mydomain.com/api/auth/oauth2" , I get new error
-
Jack Chuong 331 Reputation points
2022-10-17T08:34:44.717+00:00 I removed application and recreate again , now I get error "404 url not found" at last step, it seems that I have to public my helpdesk service as "https://helpdesk.mydomain.com" ?
-
Jack Chuong 331 Reputation points
2022-10-17T09:50:15.087+00:00 I enable url rewrite for my osticket service (Apache) and it works now, thank you very much